pdf.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 52/68 Related 2476
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 691.50 KB (708096 bytes)
Compile time: 2019-07-14 20:08:34
MD5: 93c76ec29f0152b3ed728118b27464ec
SHA1: 1acfa69dc778f5610402319f8bf2b496ce0d25ec
SHA256: 3c239a1e21f8d36cfba76d540474e5a5587dbcbb9414ff436c256ebd162ffc6b
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-06 03:24:06
Last submission: 2019-09-06 03:24:06
Filename detected: - pdf.exe (1)
URL file hosting
hXXps://[www].mywp.asia/pdf.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-09-03 16:00:23 [52/68] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x78f74 495616 e127753cd4528d92f4025660207ac715 f7503570fd53276774789e6baaa0fc26d71f26ae
.rsrc 0x7c000 0x3399c 211456 515685f494b04036867cb31c89907f49 5fa2bc48fbe7dab8cbd50dd4a478576da6710a06
.reloc 0xb0000 0xc 512 be4c7690a6045e59870ee8cf7dee3562 4b01d5990427fc64761476b14f74c0e2aaa129b1
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Text
Text Files | *.txt
FIle type: Library
mscoree.dll
IP Found
No IP detected
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-06 03:24:07